Events Related:
- OWASP AppSec DC 2009 Schedule – owasp.org
Conference schedule now up - Black Hat DC 2009 Briefings – Audio & Video Posted – djtechnocrat.blogspot.com
Some material from the event held last February 2009.
Resources:
- CanYouSeeMe.org Checks for Open Ports Behind Firewalls – lifehacker.com
This website helps you see any open ports to trouble shoot connection issues. - Changes coming to the OWASP Top 10 in 2010 – acunetix.com
An analysis on the changes made to the Top 10 list. - SAP Security In-Depth Vol. I is available for FREE – professionalsecuritytesters.org
The first volume of Onapsis’ specialized publication on SAP security can now be downloaded at their site. - SecurityActs, a New Security Magazine – professionalsecuritytesters.org
A free online magazine for IT security professionals has just launched - Boosting Security Awareness in Colleges – avertlabs.com
An overview of network security in campuses and some tips for students on how they can protect themselves.
Tools:
- Slitaz Related News
A Linux distribution aimed at cracking wireless security was updated.- Slitaz Aircrack-ing Distribution v20091124 Released – security-database.com
- SliTaz — A small Bootable Linux Distribution (30 MB) – professionalsecuritytesters.org
- RFIDIOt-1.0a released – professionalsecuritytesters.org
An RFID explorer tool with added support for libnfc devices, Mifare UltraLight tags among others. - PTK Hash Set Manager – blogs.sans.org/computer-forensics
A quick look at PTK, the GUI for the Sleuth kit command line tools. - Burp Suite v1.3 beta – portswigger.net
A new release brings improved search, export via XML, among others - Nessus releases new version with GUI facelift
Updates include a new interface, network access to scan results, among others.- Nessus 4.2 Released – tenablesecurity.com
- Nessus Gets an Extreme Makeover – digitalbond.com
- Kismet v2009-11-R1 Released – security-database.com
A new release with fixes for XML corruption, terminal resizing, among others - 7 things you didn’t know about pcapr – mudynamics.com
A rundown on a few capabilities of this packet capture tool. - Honeynet Project offers sophisticated Picviz GUI – sunbeltblog.blogspot.com
This is a project that lets users visualize data for traffic logs, database logs, SSH logs and more. - Metasploit Updates to 3.3.1
Rapid7 takes first step in integrating the pentest tool with NeXpose scanner.- Metasploit 3.3.1 + NeXpose Community Edition – metasploit.com
- Metasploit Gets New Vulnerability Scanning Features – darkreading.com
- Metasploit Framework v3.3.1 Released – security-database.com
- Lynis v1.2.7 Released (Updated) – security-database.com
The update to this Unix auditing tool includes minor bugfixes and several new tests. - Haraldscan v0.401 Released – security-database.com
This Bluetooth scanner enables MAC address mapping against a vendor list. - Matriux New Security Distro (Next 05 Dec @ ClubHack 2009) – security-database.com
A new Linux distro aimed at security testers will be released shortly. - Sambascan2 v0.4.2 Released – Scanning POR SMB Shares – security-database.com
This tool allows for scanning of SMB shared hosts. - BGP Adjacency Security Tools – packetlife.net
A few tools of BGN for protecting neighbor adjacencies. - Backtrack 4 How-to Updated for Nessus 4.2 – infosecramblings.com
Some changes in the new Backtrack include updated procedures and apt-get upgrade section moved. - WhatWeb v0.3 – Next Generation Web Scanner – security-database.com
A web application scanner for identifying CMS, blogging platforms, javascript libraries and more. - Microsoft COFEE on Wikileaks – djtechnocrat.blogspot.com
A leaked copy of this tool for forensics investigation shows up online.
Techniques:
- Two exploit versions of the ctxsys.drvxtabc.create_tables bug from Bunker – petefinnigan.com
The first is the traditional one and the second uses cursor injection. - HTTP parser for intrusion detection and web application firewalls – ivanristic.com
A post about an HTTP parser for use in intrusion detection systems and web application firewalls. - Using FOCA to collect Metadata about an organization – irongeek.com
A short video that shows how you can gather document and media metadata using this tool. - DNS Rebinding Video – ha.ckers.org
A short video to explain this topic more clearly. - Some Shodan related posts
- SHODAN: Cracking IP Surveillance DVR – praetorianprefect.com
An explanation on how to compromise IP-based surveillance systems as well as thoughts related to this. - Shodan scares me – erratasec.blogspot.com
Some ethical musings on using this cloud pentesting tool. - why shodan is scary and not scary at once – terminal23.net
Shodan does speed up looking for vulnerable hosts, though nothing you cannot protect against if you act on it.
- SHODAN: Cracking IP Surveillance DVR – praetorianprefect.com
- Common methods to hack a website – rafayhackingarticles.blogspot.com
- A quick tip on how you can test your website against a few common attacks.
- Exploiting Web Apps With Commercial Tools – notsosecure.com
Some thoughts on using Burp and Netsparker in finding exploits. - Using msfpayload and msfencode from Metasploit3.3 to bypass anti-virus – irongeek.com
A video showing how to do the mentioned exploit. - Digging into SSL Cipher Checking -carnal0wnage.com
A short post listing resources on how to understand this problem. - FPGA Oracle password breaker news
- Dennis Yurichev wrote an article about his FPGA Oracle password cracker – red-database-security.com
A short intro on the technique for cracking Oracle passwords via brute force. - How to create FPGA-based Oracle RDBMS cracker… – conus.info
- Oracle RDBMS passwords solver – conus.info
A faster algorithm for cracking is extensively explained. The second link goes to the table of solved passwords.
- Dennis Yurichev wrote an article about his FPGA Oracle password cracker – red-database-security.com
- CSRF related news
- CSRF – Browser Dependency Factor – Yes It Persists – zeroknock.blogspot.com
A run-through on the CSRF attack on browsers and what was improved since it was revealed. - Cross-Site Request Forgery For POST Requests With An XML Body – pentestmonkey.com
An approach on how to use POST requests for CSRF attacks.
- CSRF – Browser Dependency Factor – Yes It Persists – zeroknock.blogspot.com
Vulnerabilities:
- Root exploit for FreeBSD – h-online.com
A new vuln for this popular Unix distribution allows root access, incredibly easy to exploit. - Beware of rigged PDF files on BlackBerry – zdnet.com
Rigged PDF can compromise the BlackBerry Attachment Service, according to RIM. - 0-Day Flaw in Adobe Illustrator Confirmed
The flaw which is caused by an EPS parsing error can corrupt the system’s memory and arbitrary code execution.- Exploit Released for Adobe Illustrator Zero Day Flaw – djtechnocrat.blogspot.com
- Critical zero-day flaw found in Adobe Illustrator – zdnet.com
- Jave JRE Buffer and Integer Overflow – isc.sans.org
Sun admits to overflow vulnerabilities in the Java Runtime Environment. - Open Source Attempt To Crack GSM Encryption – slashdot.org
H4RDW4RE is looking to compromise the worldwide cellular standard to expose flaws. - Clientless VPNs endanger user security
Clientless SSL VPN expose users to attacks that allow hackers to view passwords and keystrokes- Cisco and Juniper ‘clientless’ VPN expose netizens – theregister.co.uk
- Clientless SSL VPN products break the Web – ivanristic.com
Vendor/Software Patches:
- Patch Tuesday advance announcement to fix IE, Office flaws
Microsoft has stepped up to include important updates in the next Patch Tuesday for their web browser and office programs.- December 2009 Bulletin Advance Notification – microsoft.com
- Patch Tuesday heads-up: MS to fix ‘critical’ IE, Office security holes – zdnet.com
- MS to Patch Critical IE Zero-Day Flaw – threatpost.com
- Cache poisoning vulnerability in ISC BIND 9 – zdnet.com
The Internet Systems Consortium patches a severe vulnerability for BIND 9 users with DNSSEC validation on. - Critical Adobe Flash, Adobe Air patches on tap – zdnet.com
Adobe plans to release some critical updates for the zero-day Flash exploit.
Other News:
- Ongoing brute-force attacks on WordPress installations
Someone recently discovered a PHP script being used on different servers to compromise admin accounts.- Distributed WordPress admin account cracking – isc.sans.org
- WordPress Installations Under Brute-Force Attack – threatpost.com
- NIST Urges Fed to Continuously Monitor Cybersecurity Efforts – darkreading.com
New document puts more onus on applying risk management throughout the life cycle of IT systems. - IBM Purchase of Guardium
Big Blue enters the data security market with its purchase if this firm.- Confirmed: IBM Acquires Database Security Startup Guardium For Undisclosed Amount – techcrunch.com
- IBM Buys Database Security Firm Guardium – imperva.com
- Department of Defense Buys 2,200 PS3s to Upgrade Supercomputer – gizmodo.com
It’s not for playing more Call of Duty, the purchase is a cost-effective solution for the USAF Linux cluster upgrade. Really. - McAfee uncovers riskiest domains – cnet.com
Cameroon’s .cm revealed as the riskiest domain extension. - How the 9/11 Pagers Got Hacked – motherboard.tv
It’s not hard to hack pagers, all you need is a single pager, a laptop and some software for signal interception
Great collection!